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1 Focus on Embedded Systems 
Rick Lehrbaum 
January 2001 Linux Journal 

Full text available: html(15.03 KB) Additional Information: full citation , index terms 



PicoDBMS: Scaling down database techniques for the smartcard Q 

Philippe Pucheral, Luc Bouganim, Patrick Valduriez, Christophe Bobineau 

September 2001 The VLDB Journal — The International Journal on Very Large Data 

Bases, Volume 10 Issue 2-3 
Full text available: pdf(259.03 KB) Additional Information: full citation , abstract , index terms 

Smartcards are the most secure portable computing device today. They have been used 
successfully in applications involving money, and proprietary and personal data (such as 
banking, healthcare, insurance, etc.). As smartcards get more powerful (with 32-bit CPU and 
more than 1 MB of stable memory in the next versions) and become multi-application, the 
need for database management arises. However, smartcards have severe hardware 
limitations (very slow write, very little RAM, constrained stable mem ... 

Keywords: Atomicity, Durability, Execution model, PicoDBMS, Query optimization, 
Smartcard applications, Storage model 



Using smartcards to secure a personalized gambling device 
William A. Aiello, Aviel D. Rubin, Martin J. Strauss 

November 1999 Proceedings of the 6th ACM conference on Computer and 
communications security 

Full text available: ^ )pdf(762.94 KB) Additional Information: full citation , abstract , references , index terms 

We introduce a technique for using an untrusted device, such as a hand-held personal digital 
assistant or a laptop to perform real financial transactions without a network. We utilize the 
tamper-resistant nature of smartcards to store value on them and perform probabilistic 
computations based on user input. We discuss an application of this to gambling. The 
technique has the properties that the user is guaranteed to make money when he wins and 
the house is guaranteed to make money w ... 
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Marc Loutrel, Pascal Urien, Guy Pujolle 

October 2003 Proceedings of the 2003 IFIP/ACM Latin America conference on Towards 
a Latin American agenda for network research 

Full text available: ' g] pdf(333.05 KB) Additional Information: full citation , abstract , references , index terms 

Wireless LANs based on the IEEE 802.11b standard have spread very quickly over the past 
few years. Nevertheless a lot of security issues remain and stop its deployment in 
corporations. One of the most important issues is the authentication of a terminal to an 
Access Point. We propose an interface to integrate the Extensible Authentication Protocol 
into smartcards and will show that smartcards could constitute the de-facto device for 
authentication in Wireless LAN as they are for GSM and will ... 

Keywords: authentication, smartcard, wireless LANs 



5 Computer applications: A Java OpenCard framework based medical smartcard system Q 
David Gildea, Tom Dowling 

June 2003 Proceedings of the 2nd international conference on Principles and practice 
of programming in Java 

Full text available: ^ pdf( 193.50 KB) Additional Information: full citation , abstract , references , index terms 

The architecture and use of the java OpenCard Framework, (OCF), to develop SmartCard 
systems is discussed. The protocols involved and the different layers that comprise the 
systems are also discussed. The design and implementation of an OCF based personal 
Medical SmartCard system is presented. 

Keywords: OpenCard Framework, smart cards 



6 BITS: a smartcard protected operating system Q 
Paul C. Clark, Lance J. Hoffman 

November 1994 Communications of the ACM, volume 37 issue n 

Full text available: ^ pdf(3.80 MB) Additional Information: full citation , references , citings , index terms 



7 Linux Webpads Give PC Competition ' Q 
Linley Gwennap 

May 2000 Linux Journal 

Full text available: jjjjj} html(5,90 KB) Additional Information: full citation , abstract , index terms 
New hardware for a new generation. 

8 Mobility & wireless access: Dynamic service reconfiguration for wireless web access I I 
Siu-Nam Chuang, Alvin T.S. Chan, Jiannong Cao, Ronnie Cheung 

May 2003 Proceedings of the twelfth international conference on World Wide Web 

Full text available: ^ pdf(620.78 KB) Additional Information: full citation , abstract , references , index terms 

This paper describes a dynamic service reconfiguration model where the proxy is composed 
of a chain of service objects called mobilets (pronounced as mo-be-lets), which can be 
deployed onto the network actively. This model offers flexibility because the chain of 
mobilets can be dynamically reconfigured to adapt to the vigorous changes in the 
characteristics of the wireless environment, without interrupting the service provision for 
other mobile nodes. Furthermore, mobilets can also be migrated t ... 

Keywords: active services, dynamic service reconfiguration, wireless environment 
adaptation, wireless web access 
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9 Formalizing the safety of Java, the Java virtual machine, and Java card 
Pieter H. Hartel, Luc Moreau 

December 2001 ACM Computing Surveys (CSUR), Volume 33 issue 4 

Full text available* ^ 3 pdf(442 86 KB) Additional Information: full citation , abstract , references , citings , index 
* l&J-^— * : terms 

We review the existing literature on Java safety, emphasizing formal approaches, and the 
impact of Java safety on small footprint devices such as smartcards. The conclusion is that 
although a lot of good work has been done, a more concerted effort is needed to build a 
coherent set of machine-readable formal models of the whole of Java and its 
implementation. This is a formidable task but we believe it is essential to build trust in Java 
safety, and thence to achieve ITSEC level 6 or Common Crite ... 

Keywords: Common criteria, programming 



10 Oral II: Secure smartcardbased fingerprint authentication I I 

T. Charles Clancy, Negar Kiyavash, Dennis J. Lin 

November 2003 Proceedings of the 2003 ACM SIGMM workshop on Biometrics methods 
and applications 

Full text available: *^ pdf(452.50 KB) Additional Information: full citation , abstract , references , index terms 

In this paper, the fundamental insecurities hampering a scalable, wide-spread deployment 
of biometric authentication are examined, and a cryptosystem capable of using fingerprint 
data as its key is presented. For our application, we focus on situations where a private key 
stored on a smartcard is used for authentication in a networked environment, and we 
assume an attacker can launch o -line attacks against a stolen card.Juels and Sudan's fuzzy 
vault is used as a starting point for buildi ... 

Keywords: authentication, biometrics, fingerprint, smartcard 



11 Emerging applications: A new CRT-RSA algorithm secure against bellcore attacks I I 
Johannes Blomer, Martin Otto, Jean-Pierre Seifert 

October 2003 Proceedings of the 10th ACM conference on Computer and 
communications security 

Full text available: ^ pdf(306.99 KB) Additional Information: full citation , abstract , references , index terms 

In this paper we describe a new algorithm to prevent fault attacks on RSA signature 
algorithms using the Chinese Remainder Theorem (CRT-RSA). This variant of the RSA 
signature algorithm is widely used on smartcards. Smartcards on the other hand are 
particularly susceptible to fault attacks like the one described in [7]. Recent results have 
shown that fault attacks are practical and easy to accomplish ([21], [17]).Therefore, they 
establish a practical need for fault attack protected CRT-RSA schem ... 

Keywords: Bellcore attack, Chinese remainder theorem, RSA, cryptanalysis, faults attacks, 
smartcards 



Nark: receiver-based multicast non-repudiation and key management 
Bob Briscoe, Ian Fairman 

November 1999 Proceedings of the 1st ACM conference on Electronic commerce 

Full text available:^ pdf(168. 86 KB) Additional Information: full citation , references , citings , index terms 
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Keywords: Internet, audit trail, key management, multicast, non-repudiation, smartcard, 
watermark 



13 Computer security (SEC): Protected transmission of biometric user authentication data I I 
for oncard-matching 

Ulrich Waldmann, Dirk Scheuermann, Claudia Eckert 

March 2004 Proceedings of the 2004 ACM symposium on Applied computing 

Full text available: * ^ pdff 574.45 KB) Additional Information: full citation , abstract , references 

Since fingerprint data are no secrets but of public nature, the verification data transmitted 
to a smartcard for oncard-matching need protection by appropriate means in order to assure 
data origin in the biometric sensor and to prevent bypassing the sensor. For this purpose, 
the verification data to be transferred to the user smartcard is protected with a 
cryptographic checksum that is calculated within a separate security module controlled by a 
tamper resistant card terminal with integrated bio ... 

Keywords: authentication, biometrics, cryptographic protocols, data integrity, electronic 
signature, oncard-matching, smartcards, system security, tamper proof environment 

14 Towards ubiquitous database in mobile commerce I I 
Kimio Kuramitsu, Ken Sakamura 

May 2001 Proceedings of the 2nd ACM international workshop on Data engineering 
for wireless and mobile access 

Full text available: ^ pdf(106.49 KB) Additional Information: full citation , abstract , references , index terms 

Ubiquitous database places data everywhere. We focus on contactless smartcards combined 
with a small processor and memory for data storage. Very small DBMS implemented on 
them can interact through queries on a wireless communication. Ubiquitous database 
attaches such DBMSs to real world "objects" physically, and then allows different 
organizations to share information retrieved directly from physical goods, materials, or 
persons. We combined the theory with practice in the ticket ... 

Keywords: data model and querying for ubiquitous data, mobile commerce, smartcard 
database, ubiquitous computing 



15 Anonymous E-prescriptions I I 

Giuseppe Ateniese, Breno de Medeiros 

November 2002 Proceedings of the 2002 ACM workshop on Privacy in the Electronic 
Society 

Full text available: ^ pdff 304. 10 KB) Additional Information: full citation , abstract , references 

This paper studies issues related to privacy protection of medical data, arguing that the 
topic is suitable for applied cryptographic research. We present the problem of medicine 
prescription privacy and describe a practical system that employs standard cryptographic 
techniques to achieve several improvements over current practices. We also introduce a 
very simple tool: Online group signatures which can be built via simple primitives 
implemented in commonly employed cryptographic libraries. 

Keywords: medical information privacy, privacy-preserving cryptographic techniques, 
public-key cryptography 
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